| 标题 | lahirudanushka School-Management-System---PHP-MySQL Public 1.0.1 Cross Site Scripting |
|---|
| 描述 | A vulnerability pertaining to Stored Cross-site Scripting (XSS) has been identified in version 1.0.1 of School-Management-System---PHP-MySQL at /subject.php . This flaw enables attackers to inject a malicious script containing JavaScript code. Subsequently, this code may be triggered upon viewing the subjects tab. |
|---|
| 来源 | ⚠️ https://secretive-agate-23c.notion.site/School-Management-System-PHP-MySQL-stored-1-0-1-XSS-50088f0ed9e94efda9c57772ce192980 |
|---|
| 用户 | Taher Aboud (UID 70699) |
|---|
| 提交 | 2024-06-26 19時42分 (2 年前) |
|---|
| 管理 | 2024-06-27 07時24分 (12 hours later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 269807 [lahirudanushka School Management System 1.0.0/1.0.1 Subject Page /subject.php Subject Title/Sybillus Details 跨网站脚本] |
|---|
| 积分 | 15 |
|---|